Windows

Implementing FreeIPA as a central Identity Management Solution

Many of my customers from many companies that have a reliance on Microsoft Active Directory to manage their server and workstation estate. This is great if you have a Windows only organisation.

However, although you can add Linux systems directly to Active Directory, you don’t maintain the same level of control over the systems in the same way that you would have with a Windows server connected to the same domain.

Continue reading “Implementing FreeIPA as a central Identity Management Solution” »

Adding Yubikey 2 factor authentication to your Red Hat Enterprise Linux estate

A few weeks ago I covered how to integrate the YubiRadius Virtual Appliance into FreeIPA which you can find here, or Microsoft Active Directory which you can find here.

This article is a really quick walk though on how to take your authentication one step further, and add 2 factor authentication into the same process for your Red Hat Enterprise Linux server estate.

Continue reading “Adding Yubikey 2 factor authentication to your Red Hat Enterprise Linux estate” »

Creating a Moodle LMS with Active Directory Users

For those who aren’t aware, Moodle is an open source Learning Management System (LMS) which gives you the ability to teach courses online. I’ve used it for years and I think its brilliant. You can use it to teach in junior and high schools, but also you can use it in a corporate environment as […]

YubiRadius integration with group-validated Active Directory Users using LDAP

This article will show you how to set up the YubiRadius Virtual Appliance (v. 3.5.1) for User validation against a Microsoft Active Directory 2008R2 infrastructure.

You can obtain the YubiRadius Virtual Appliance from the good people over at Yubico, or just click here

This guide is not meant to show you how to configure a virtual appliance in your choice of Virtualization technology, although as I am using KVM, a special thanks to Gavin Spurgeon for getting this VA converted and working smoothly (even with virtio for the icing on the cake).

Continue reading “YubiRadius integration with group-validated Active Directory Users using LDAP” »

Web proxy filtering with SquidGuard – Using Active Directory group memberships

This guide will give you a walk through how to configure your existing Squid proxy server to provide content filtering capabilities for your Active Directory users.

This guide has been produced using Red Hat Enterprise Linux 6.3 and a Microsoft 2008r2 Active Directory domain.

If you currently do not have an existing Squid installation, you can follow my previous article on how to configure Squid for Active Directory authentication.

To start with, if you have read this far, you most likely already have an existing Squid installation on a server that has system authentication back to Active Directory. Follow the below steps to add Content Filtering with SquidGuard.

Continue reading “Web proxy filtering with SquidGuard – Using Active Directory group memberships” »